"ProgrammableWeb had no trouble using the free app -- called SSL Packet Capture -- to not only intercept and decrypt those transmissions, but to discover sensitive and supposedly confidential information like API keys and OAuth tokens....."

I keep on reading these kinds of articles where its getting easier to get access to the application data. I think more needs to be done in the realm of security .